专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

61. 发明授权

US08296554B2 Pre-boot recovery of a locked computer system 有权
标题翻译：锁定计算机系统的预引导恢复
公开(公告)号：US08296554B2
公开(公告)日：2012-10-23
申请号：US12346078
申请日：2008-12-30
申请人： Mojtaba Mirashrafi , Mousumi Hazra , Gyan Prakash , Saurabh Dadu
发明人： Mojtaba Mirashrafi , Mousumi Hazra , Gyan Prakash , Saurabh Dadu
IPC分类号： G06F21/00 , G06F15/177 , G06F9/00 , G06F9/24 , G06F9/445 , G06F13/10
CPC分类号： G06F9/4406 , G06F21/575
摘要： Embodiments of the present disclosure provide methods, apparatuses, articles, and removable storage devices for pre-boot recovery of a locked computer system. In one instance, the method includes determining on pre-boot whether a removable storage device is attached to a computer system, determining whether the computer system is in a locked state and, if the removable storage device is detected, transferring control to a pre-boot authentication module (PBA) stored on the removable storage device to interact with a manageability engine to restore the computer system from the locked state to an unlocked state. If the removable storage device is not detected, the computer system shuts down if the system is determined to be in the locked state and no other PBA is detected. The computer system comprises a host operating environment and a manageability engine that operates independent of the host operating environment. Other embodiments may also be described and claimed.
摘要翻译：本公开的实施例提供了用于锁定计算机系统的预引导恢复的方法，装置，物品和可移动存储装置。在一种情况下，该方法包括：在预引导下确定可移动存储设备是否连接到计算机系统，确定计算机系统是否处于锁定状态，并且如果检测到可移动存储设备，存储在可移动存储设备上的引导认证模块（PBA），以与可管理引擎交互以将计算机系统从锁定状态恢复到解锁状态。如果未检测到可移动存储设备，则如果确定系统处于锁定状态并且没有检测到其他PBA，则计算机系统将关闭。计算机系统包括独立于主机操作环境操作的主机操作环境和可管理引擎。也可以描述和要求保护其他实施例。

62. 发明申请

US20110246757A1 UNATTENDED SECURE REMOTE PC CLIENT WAKE, BOOT AND REMOTE LOGIN USING SMART PHONE 有权
标题翻译：未知安全远程PC客户端唤醒，启动和远程登录使用智能手机
公开(公告)号：US20110246757A1
公开(公告)日：2011-10-06
申请号：US12753591
申请日：2010-04-02
申请人： Gyan Prakash , Farid Adrangi , Saurabh Dadu
发明人： Gyan Prakash , Farid Adrangi , Saurabh Dadu
IPC分类号： H04L9/32 , G06F15/177 , G06F21/00 , H04L29/06
CPC分类号： G06F21/35 , G06F21/305 , G06F21/43 , G06F21/575 , H04L63/0428 , H04L63/083 , H04W4/14
摘要： Methods and systems to allow an authorized user to remotely awaken, boot, and login to a computer in a secure manner. The user and computer may communicate using a short message service. (SMS). The user may communicate with the computer using a mobile device, such as a smart phone. The user may initially provide a wake-up message to the computer, which may then respond by asking for one or more boot passwords. In an embodiment, these boot passwords may be basic input/output system (BIOS) passwords that are required for the loading and operations of the computer's BIOS. The user may then provide these one or more passwords to the computer. The computer may further request an operating system (OS) login password. The user may then provide this password to the computer. In an embodiment, all passwords may be provided to the computer in encrypted form. Moreover, authentication measures may be used to provide assurance that the user is legitimate.
摘要翻译：允许授权用户以安全的方式远程唤醒，引导和登录计算机的方法和系统。用户和计算机可以使用短消息服务进行通信。（短信）。用户可以使用诸如智能电话的移动设备与计算机进行通信。用户可以最初向计算机提供唤醒消息，该消息然后可以通过询问一个或多个引导密码来进行响应。在一个实施例中，这些启动密码可以是加载和操作计算机的BIOS所需的基本输入/输出系统（BIOS）密码。然后，用户可以向计算机提供这些一个或多个密码。计算机可以进一步请求操作系统（OS）登录密码。然后，用户可以向计算机提供该密码。在一个实施例中，所有密码可以以加密形式提供给计算机。此外，可以使用认证措施来提供用户是合法的保证。

63. 发明申请

US20110154502A1 Data Protection 审中-公开
标题翻译：数据保护
公开(公告)号：US20110154502A1
公开(公告)日：2011-06-23
申请号：US12653802
申请日：2009-12-18
申请人： Gyan Prakash , Sanjay Bakshi , Duncan Glendinning , Saurabh Dadu
发明人： Gyan Prakash , Sanjay Bakshi , Duncan Glendinning , Saurabh Dadu
IPC分类号： G06F21/00 , G06F21/24
CPC分类号： H04L63/102 , G06F1/1677 , G06F21/6245 , H04L63/0428
摘要： A method to manage data access in an electronic device comprising a housing having a lid comprises receiving, from a remote server, a data protection policy, storing the data protection policy in a memory location on the electronic device, detecting a transition from a lid open status to a lid closed status, and in response to the transition, implementing the data protection policy on the electronic device. Other embodiments may be described.
摘要翻译：一种用于管理电子设备中的数据访问的方法，包括具有盖的壳体，包括从远程服务器接收数据保护策略，将数据保护策略存储在电子设备上的存储器位置，检测从盖打开状态为盖关闭状态，并响应于过渡，在电子设备上实施数据保护策略。可以描述其他实施例。

64. 发明申请

US20110151836A1 Secure subscriber identity module service 有权
标题翻译：安全的用户身份模块服务
公开(公告)号：US20110151836A1
公开(公告)日：2011-06-23
申请号：US12653709
申请日：2009-12-17
申请人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
发明人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
IPC分类号： H04W12/04 , H04M1/00 , H04L9/32
CPC分类号： H04L63/061 , G06F21/335 , G06F21/34 , G06F21/6272 , G06F21/72 , G06F2221/2105 , G06F2221/2115 , G06F2221/2141 , G06F2221/2149 , G06F2221/2153 , H04L63/0853 , H04L63/123 , H04W4/50
摘要： A method, apparatus, system, and computer program product for a secure subscriber identity module service. Communication via a mobile network is activated in response to receiving a request to activate communication service for the system by a secure partition of the system. In response to receiving the request, a key is retrieved for a permit service from storage accessible only by the secure partition. The key is included in a permit requesting to activate the communication service, and the permit is sent to a service provider for the communication service. The service provider communicates with the permit service to obtain a digital signature for the permit. The secure partition receives a signed permit from the service provider, confirms that the signed permit contains the digital signature by the permit service, and activates the communication service for the system in response to confirming that the signed permit contains the digital signature.
摘要翻译：一种用于安全用户识别模块服务的方法，装置，系统和计算机程序产品。响应于通过系统的安全分区来接收为系统激活通信服务的请求而激活通过移动网络的通信。响应于接收到请求，从仅由安全分区访问的存储中检索用于许可服务的密钥。密钥被包括在请求激活通信服务的许可证中，并且许可证被发送到用于通信服务的服务提供商。服务提供商与许可证服务人员进行通信，以获得许可证的数字签名。安全分区从服务提供商接收签名的许可证，确认签发的许可证包含许可服务的数字签名，并且响应于确认签署的许可证包含数字签名，激活系统的通信服务。

65. 发明申请

US20140362236A1 CONTEXT BASED MANAGEMENT FOR SECURE AUGMENTED REALITY APPLICATIONS 有权
公开(公告)号：US20140362236A1
公开(公告)日：2014-12-11
申请号：US14293882
申请日：2014-06-02
申请人： Todd Harple , Gyan Prakash , Saurabh Dadu , Sigal Louchheim
发明人： Todd Harple , Gyan Prakash , Saurabh Dadu , Sigal Louchheim
IPC分类号： G06T19/00 , H04N1/00
CPC分类号： H04L63/107 , G06F3/005 , G06F21/83 , G06F21/84 , G06F2221/031 , G06F2221/2111 , G06T19/006 , G09G5/006 , G09G2358/00 , G09G2370/16 , H04L63/0428 , H04L67/42 , H04N1/00214 , H04N1/00244 , H04N5/23293 , H04N5/44 , H04N5/765
摘要： An example system that allows a camera enabled application, such as an augmented reality application, to run in a protected area may include a first device including a camera, the camera including a secure mode of operation and a display, an image processing module configured to convert image data from the camera to encoded data when the camera is in the secure mode and protect image data stored in the system, an encryption module configured to encrypt encoded data from the image processing module, and a protected audiovisual path mechanism configured to securely send augmented encoded data to the display.

66. 发明授权

US08892904B2 Hardware enforced security governing access to an operating system 有权
标题翻译：硬件强制执行对操作系统的访问的安全性
公开(公告)号：US08892904B2
公开(公告)日：2014-11-18
申请号：US13612991
申请日：2012-09-13
申请人： Mojtaba Mirashrafi , Gyan Prakash , Jiphun C. Satapathy , Saurabh Dadu
发明人： Mojtaba Mirashrafi , Gyan Prakash , Jiphun C. Satapathy , Saurabh Dadu
IPC分类号： G06F12/14 , G06F21/31 , G06F3/038
CPC分类号： G06F21/31 , G06F21/57 , H04L63/083
摘要： The present disclosure is directed to systems and methods related to hardware-enforced access protection. An example device may comprise a login agent module (LAM), an operating system login authentication module (OSLAM) and a secure user authentication module (SUAM). The LAM may be configured to cause a prompt requesting login information to be presented by the device. The LAM may then provide the login information to the OSLAM, which may be configured to authenticate the login information using known user information. If authenticated, the OSLAM may generate and transmit a signed login success message to the SUAM using a private key. The SUAM may be secure/trusted software loaded by device firmware, and may be configured to authenticate the signed login success message. If authenticated, the SUAM may transmit an encrypted authentication message to the OSLAM. If the encrypted authentication message is authenticated, the OSLAM may grant access to the device.
摘要翻译：本公开涉及与硬件强制访问保护相关的系统和方法。示例设备可以包括登录代理模块（LAM），操作系统登录认证模块（OSLAM）和安全用户认证模块（SUAM）。 LAM可以被配置为引起提示请求登录信息由设备呈现。然后，LAM可以向OSLAM提供登录信息，其可以被配置为使用已知的用户信息来认证登录信息。如果经过身份验证，OSLAM可以使用私钥生成并发送签名的登录成功消息给SUAM。 SUAM可以是由设备固件加载的安全/可信软件，并且可以被配置为对签名的登录成功消息进行认证。如果认证，则SUAM可以向OSLAM发送加密的认证消息。如果加密的认证消息被认证，OSLAM可以授权对设备的访问。

67. 发明授权

US08763112B2 Systems and methods for power-on user authentication 有权
标题翻译：上电用户认证的系统和方法
公开(公告)号：US08763112B2
公开(公告)日：2014-06-24
申请号：US13175833
申请日：2011-07-02
申请人： Gyan Prakash , Saurabh Dadu , Selim Aissi
发明人： Gyan Prakash , Saurabh Dadu , Selim Aissi
IPC分类号： G06F12/14 , G06F21/31 , G06F7/00 , G06F7/04 , G06F12/00 , G06F17/30 , G11C7/00
CPC分类号： G06F21/31 , G06F1/26 , G06F21/35 , G06F21/81 , G06F2221/2131
摘要： Embodiments of systems and methods for power-on user authentication are disclosed. A method for power-on user authentication may comprise receiving an authentication input with a security controller of a computing device prior to supplying power to a primary processor of the computing device, comparing the authentication input to an authentication code using the security controller, and supplying power to the primary processor in response to the authentication input matching the authentication code.
摘要翻译：公开了用于开机用户认证的系统和方法的实施例。用于上电用户认证的方法可以包括在向计算设备的主处理器供电之前接收与计算设备的安全控制器的认证输入，使用安全控制器将认证输入与认证码进行比较，以及提供响应于与认证码相匹配的认证输入，向主处理器供电。

68. 发明申请

US20140047428A1 AUTOMATED MODULAR AND SECURE BOOT FIRMWARE UPDATE 审中-公开
标题翻译：自动模块化和安全引擎固件更新
公开(公告)号：US20140047428A1
公开(公告)日：2014-02-13
申请号：US14055008
申请日：2013-10-16
申请人： Gyan Prakash , Saurabh Dadu , Selim Aissi , Hormuzd M. Khosravi , Duncan Glendinning , Cris Rhodes
发明人： Gyan Prakash , Saurabh Dadu , Selim Aissi , Hormuzd M. Khosravi , Duncan Glendinning , Cris Rhodes
IPC分类号： G06F9/445
CPC分类号： G06F8/65 , G06F9/24 , G06F21/572 , G06Q10/00
摘要： A method, apparatus, system, and computer program product for an automated modular and secure boot firmware update. An updated boot firmware code module is received in a secure partition of a system, the updated boot firmware code module to replace one original boot firmware code module for the system. Only the one original boot firmware code module is automatically replaced with the updated boot firmware code module. The updated boot firmware code module is automatically executed with the plurality of boot firmware code modules for the system and without user intervention when the system is next booted. The updated boot firmware code module may be written to an update partition of a firmware volume, wherein the update partition of the firmware volume is read along with another partition of the firmware volume containing the plurality of boot firmware code modules when the system is booted.
摘要翻译：一种用于自动化模块化和安全启动固件更新的方法，设备，系统和计算机程序产品。在系统的安全分区中接收更新的引导固件代码模块，该更新的引导固件代码模块用于替换系统的一个原始引导固件代码模块。只有一个原始引导固件代码模块将自动替换为更新的引导固件代码模块。当系统下次启动时，更新的引导固件代码模块将自动执行与系统的多个引导固件代码模块，而无需用户干预。可以将更新的引导固件代码模块写入固件卷的更新分区，其中当系统引导时，固件卷的更新分区与包含多个引导固件代码模块的固件卷的另一个分区一起读取。

69. 发明授权

US08356340B2 Secure subscriber identity module service 有权
标题翻译：安全的用户身份模块服务
公开(公告)号：US08356340B2
公开(公告)日：2013-01-15
申请号：US13332847
申请日：2011-12-21
申请人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
发明人： Saurabh Dadu , Gyan Prakash , Mojtaba Mirashrafi
IPC分类号： G06F7/04
CPC分类号： H04L63/061 , G06F21/335 , G06F21/34 , G06F21/6272 , G06F21/72 , G06F2221/2105 , G06F2221/2115 , G06F2221/2141 , G06F2221/2149 , G06F2221/2153 , H04L63/0853 , H04L63/123 , H04W4/50
摘要： A method, apparatus, system, and computer program product for a secure subscriber identity module service. Communication via a mobile network is activated in response to receiving a request to activate communication service for the system by a secure partition of the system. In response to receiving the request, a key is retrieved for a permit service from storage accessible only by the secure partition. The key is included in a permit requesting to activate the communication service, and the permit is sent to a service provider for the communication service. The service provider communicates with the permit service to obtain a digital signature for the permit. The secure partition receives a signed permit from the service provider, confirms that the signed permit contains the digital signature by the permit service, and activates the communication service for the system in response to confirming that the signed permit contains the digital signature.
摘要翻译：一种用于安全用户识别模块服务的方法，装置，系统和计算机程序产品。响应于通过系统的安全分区来接收为系统激活通信服务的请求而激活通过移动网络的通信。响应于接收到请求，从仅由安全分区访问的存储中检索用于许可服务的密钥。密钥被包括在请求激活通信服务的许可证中，并且许可证被发送到用于通信服务的服务提供商。服务提供者与许可证服务人员进行通信，以获得许可证的数字签名。安全分区从服务提供商接收签名的许可证，确认签名的许可证包含许可服务的数字签名，并且响应于确认签署的许可证包含数字签名，激活系统的通信服务。

70. 发明授权

US08244609B2 Payment management on mobile devices 有权
标题翻译：移动设备上的付款管理
公开(公告)号：US08244609B2
公开(公告)日：2012-08-14
申请号：US12753660
申请日：2010-04-02
申请人： Gyan Prakash , Saurabh Dadu , Selim Aissi , Sanjay Bakshi
发明人： Gyan Prakash , Saurabh Dadu , Selim Aissi , Sanjay Bakshi
IPC分类号： G07F19/00
CPC分类号： G06Q20/3223 , G06Q20/102 , G06Q20/14 , G06Q20/3227 , G06Q20/401 , G06Q40/12
摘要： Embodiments of techniques and systems for asynchronous offline bill review and payment are described. A bill payment management module, operated on a manageability engine on a mobile device, communicates with an online bill payment service. The bill payment management module may receive information about bill payments, including bills which are due, and presents selective information to a bill payment client application. A bill payer can then access the information on the mobile device through the bill payment client application and review or change the payment amounts. The review and the modifications may be performed when the mobile device is offline and the modifications may be stored until a later time when the mobile device can connect to a network. Once a network is available, the bill payment management module may send payment instructions to the online bill payment service. Other embodiments may be described and claimed.
摘要翻译：描述用于异步离线账单审查和支付的技术和系统的实施例。在移动设备上的可管理引擎上运行的账单支付管理模块与在线账单支付服务进行通信。账单支付管理模块可以接收关于账单支付的信息，包括到期的账单，并向账单支付客户端应用呈现选择性信息。然后，付款人可以通过帐单支付客户端应用程序访问移动设备上的信息，并查看或更改付款金额。可以在移动设备离线时执行审查和修改，并且可以存储修改直到移动设备可以连接到网络的较晚时间。一旦网络可用，账单支付管理模块可以向在线账单支付服务发送支付指令。可以描述和要求保护其他实施例。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式